DHS to hold cyber-focused industry day

The Department of Homeland Security will hold an August industry day focused on public/private collaboration for cybersecurity defense.

According to a special notice posted on FedBizOpps, DHS' Office of Cybersecurity and Communications will hold an event Aug. 16 in Arlington, Va., for “large and small companies interested in cybersecurity contracting and subcontracting opportunities” as well as “other organizations or stakeholders CS&C collaborates/partners with to accomplish its mission.”

The event will touch on updates to DHS’ cyber mission, existing and upcoming procurements and initiatives and top cybersecurity priorities. It will also serve as an opportunity for DHS officials to canvass the private sector to “obtain a better understanding of recent industry developments” in the cybersecurity space.

The event will include speakers from DHS, including Chief Procurement Officer Soraya Correa, and include breakout sessions focused on six topics: election security, cloud migration, the evolution of federal website security, updates on the Continuous Diagnostics and Mitigation program, automation and technical roadmaps.

The announcement comes just days after the federal agency held a cybersecurity summit in New York where officials unveiled a new National Risk Management Center designed to be a central hub to collaborate with private industry and critical infrastructure sectors. DHS Secretary Kirstjen Nielsen said the new center will “provide a single point of access to the full range of government activities to defend against cyberthreats.”

It also falls in line with an overall strategy stressed by DHS over the past year that neither the federal government nor private companies can effectively repel cyber attacks from criminal groups and nation states alone. Because much of U.S. critical and technical infrastructure is privately owned, DHS’ “collective defense” model -- first mentioned in April -- envisions federal agencies working side by side with companies to share threat information, coordinate on defensive measures, cooperate on criminal investigations and spell out a more formal process for interaction between the federal government and private sector on overlapping cybersecurity priorities.

Incidents like the 2017 WannaCry and NotPetya attacks have been widely attributed to hacking groups tied to North Korea and Russia, designed to harm countries writ large by targeting the largely private-owned hospital and electricity sectors in Britain and Ukraine.

Similar efforts have been identified to penetrate and access parts of the U.S. electric grid. Just days after DHS announced the opening of the risk management center, cybersecurity firm Dragos said it had discovered a new Advanced Persistent Threat group, dubbed RASPITE, targeting critical infrastructure entities in the Middle East, Europe and Asia and the United States.

The APT group, also identified by Symantec recently under the name LeafMiner, went after electric utility companies in the United States, though Dragos says the group does not appear to have successfully compromised any organizations at present time.

“Although focused on ICS-operating entities, RASPITE has not demonstrated an ICS-specific capability to date,” the company said. “This means that the activity group is targeting electric utilities, but there is no current indication the group has the capability of destructive ICS attacks including widespread blackouts like those in Ukraine.”

Parties interested in attending DHS’ industry day must register by Aug. 15.

About the Author

Derek B. Johnson is a senior staff writer at FCW, covering governmentwide IT policy, cybersecurity and a range of other federal technology issues.

Prior to joining FCW, Johnson was a freelance technology journalist. His work has appeared in The Washington Post, GoodCall News, Foreign Policy Journal, Washington Technology, Elevation DC, Connection Newspapers and The Maryland Gazette.

Johnson has a Bachelor's degree in journalism from Hofstra University and a Master's degree in public policy from George Mason University. He can be contacted at [email protected], or follow him on Twitter @derekdoestech.

Click here for previous articles by Johnson.


  • People
    Federal CIO Suzette Kent

    Federal CIO Kent to exit in July

    During her tenure, Suzette Kent pushed on policies including Trusted Internet Connection, identity management and the creation of the Chief Data Officers Council

  • Defense
    Essye Miller, Director at Defense Information Management, speaks during the Breaking the Gender Barrier panel at the Air Space, Cyber Conference in National Harbor, Md., Sept. 19, 2017. (U.S. Air Force photo/Staff Sgt. Chad Trujillo)

    Essye Miller: The exit interview

    Essye Miller, DOD's outgoing principal deputy CIO, talks about COVID, the state of the tech workforce and the hard conversations DOD has to have to prepare personnel for the future.

Stay Connected


Sign up for our newsletter.

I agree to this site's Privacy Policy.